Skip to content

Commit 844d5d0

Browse files
scordioscordio
committed
Add missing GitHub Actions pinning to CodeQL workflow
1 parent bdd7106 commit 844d5d0

1 file changed

Lines changed: 4 additions & 4 deletions

File tree

.github/workflows/codeql.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -29,21 +29,21 @@ jobs:
2929

3030
steps:
3131
- name: Checkout repository
32-
uses: actions/checkout@v4
32+
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
3333
- name: Initialize CodeQL
34-
uses: github/codeql-action/init@v3
34+
uses: github/codeql-action/init@192325c86100d080feab897ff886c34abd4c83a3 # v3.30.3
3535
with:
3636
languages: ${{ matrix.language }}
3737
build-mode: ${{ matrix.build-mode }}
3838
# https://github.com/github/codeql-action/issues/2074
3939
- name: Set up Java
4040
if: matrix.language == 'java-kotlin'
41-
uses: actions/setup-java@v5
41+
uses: actions/setup-java@dded0888837ed1f317902acf8a20df0ad188d165 # v5.0.0
4242
with:
4343
distribution: 'zulu'
4444
java-version: '21'
4545
cache: 'maven'
4646
- name: Perform CodeQL Analysis
47-
uses: github/codeql-action/analyze@v3
47+
uses: github/codeql-action/analyze@192325c86100d080feab897ff886c34abd4c83a3 # v3.30.3
4848
with:
4949
category: "/language:${{matrix.language}}"

0 commit comments

Comments
 (0)